比方说,我在web.xml中定义了3个sercurity-constrant元素,每个人都指向相同的url-pattern。而我在他们每个人单独定义这些3的auth-constraint元素:web.xml中的auth-constraint元素
<security-constraint>
...
<auth-constraint>Role1</auth-constraint>
</security-constraint>
<security-constraint>
...
<auth-constraint>Role2</auth-constraint>
</security-constraint>
<security-constraint>
...
<auth-constraint/>
</security-constraint>
谁可以访问的url-pattern指定的资源?没有人或角色1和角色2?